icedid | e12b5557df8336338fcfd34354ad27d4bd5787e95ff700bbb4c1c280b54e43bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99125bc27e0e54789c4a2c620fd5b3ff.bin
Size

1.6MB
Sample

230701-bxs7cafc46
MD5

5bb0728d32589f514aaf7b53f0a1899a
SHA1

ac92adfb7009fe6df210baa8713104933f0a9029
SHA256

e12b5557df8336338fcfd34354ad27d4bd5787e95ff700bbb4c1c280b54e43bc
SHA512

4895fefbd583c9df471c99a3f389f91b2373247c7f741541570631d578708df283df16f59b99f04e04832fd976639f27af99bf8aca9c2d71eb10adc512b1c8d0
SSDEEP

49152:Dy1eO8siGaLG2qgpB8cL+gG21lpIhWwy3oG9PQ2L:3O8PGUzj+gG21mWhoyI8

Score

10^/10

icedid 2316871781 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

2316871781

C2

hloyagorepa.com

Targets

- Target
  
  252c75237d927a1b9aeae3d4b4c04389f6c8eeccc318cdc7ae05508fed7b7b4e.exe
- Size
  
  2.8MB
- MD5
  
  99125bc27e0e54789c4a2c620fd5b3ff
- SHA1
  
  6c26a02050557b897d6b4f669ca4ce92b88669ec
- SHA256
  
  252c75237d927a1b9aeae3d4b4c04389f6c8eeccc318cdc7ae05508fed7b7b4e
- SHA512
  
  36ca500547fb3ae249d7c5e35953fe773010df99dd36c513ec60ad7a66f614c036c251d8180b3d4b0d947f558d091e9cc9993331275dddc4950a5a3518d0f56e
- SSDEEP
  
  49152:42AKNJM2ObcVTmPFeQbBrMi16ylKrSoR1j9WnGaqBi:42AMMNcVTmP9bBoLy5
Score

10^/10

icedid 2316871781 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2316871781bankerloadertrojan

behavioral2

icedid2316871781bankerloadertrojan